$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft File: 1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft (raw, json) Hash identifier: mwGpdeDDhhjiU+tw2rh5h6jYA5KnyLLVtq3V2+mh/k4= Subject key identifier: CB:DC:0E:78:27:33:DB:43:B6:AD:FF:D0:E1:11:0C:01:9C:A9:20:F5 Authority key identifier: D5:0C:29:57:DF:A8:40:A9:43:0F:B9:EE:25:D4:DC:FA:17:12:9C:18 Certificate issuer: /CN=A91FDD4D/serialNumber=D50C2957DFA840A9430FB9EE25D4DCFA17129C18 Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft Manifest number: 01B1 Signing time: Wed 02 Jul 2025 16:02:26 +0000 Manifest this update: Wed 02 Jul 2025 16:02:26 +0000 Manifest next update: Wed 09 Jul 2025 16:02:26 +0000 Files and hashes: 1: 1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl (hash: fzwnT6fmk6AIC7IgE3Y1LDit4b/OQlf+n0pl9PkXAOI=) 2: 1046CB98D28311EDB1655152C4F9AE02.roa (hash: Kqt9mEj0giKftuB2DBO692CGsOF5kZIoQznyePkJFyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:02:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=D50C2957DFA840A9430FB9EE25D4DCFA17129C18 Validity Not Before: Jul 2 16:02:26 2025 GMT Not After : Jul 9 16:02:26 2025 GMT Subject: CN=68655812-6617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:34:1b:fe:b5:50:68:8f:dc:1e:1e:69:ab:84: 69:dc:97:f7:b8:89:2c:3f:2b:9b:47:22:d9:f7:7a: 6d:73:dd:73:76:cc:0a:9b:17:6f:2b:e6:d1:a9:69: de:4c:bd:ca:7e:76:fc:74:02:7e:39:dc:56:a0:e9: d8:04:5a:c8:a4:4a:83:4f:56:73:3d:cf:c1:6f:ff: e1:7f:76:91:3a:d1:6a:25:84:69:cf:51:b5:63:f2: 4c:e9:ff:54:43:52:6d:24:4c:9b:fe:23:a3:88:cd: a8:52:4d:0b:18:99:a6:13:dc:3c:59:39:36:da:ab: 27:0e:6e:37:b2:48:a4:c7:50:cb:bf:21:9f:ad:5e: 1f:0d:0d:d5:2f:dd:1a:15:c4:4f:db:13:4a:6a:a4: 22:4b:fd:ee:70:41:83:3a:87:85:f0:70:a0:ad:38: 8f:67:3f:5a:5a:68:5a:46:9d:3b:01:f3:a5:a0:93: 84:80:ab:2c:7e:51:10:80:85:c1:98:3e:3d:29:62: 5f:60:9c:16:dd:6f:a3:2e:78:84:74:c5:f8:a8:90: 63:ad:1e:30:69:33:7f:6c:6c:0e:3b:4b:47:91:9b: 0e:54:3a:6e:7d:e2:8c:50:ca:51:2c:5e:21:85:96: 97:8d:9f:be:02:89:1f:2a:02:17:de:38:f0:17:38: 1e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:DC:0E:78:27:33:DB:43:B6:AD:FF:D0:E1:11:0C:01:9C:A9:20:F5 X509v3 Authority Key Identifier: keyid:D5:0C:29:57:DF:A8:40:A9:43:0F:B9:EE:25:D4:DC:FA:17:12:9C:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:a2:bf:05:6b:30:f2:8e:c2:fa:58:75:fd:ea:b6:49:d5:a5: 6b:13:d5:d8:ec:b2:80:72:81:4c:a7:f6:49:f4:b5:73:d6:51: f2:53:13:92:b5:d3:a3:46:69:e5:9d:c6:45:82:52:06:69:57: 1a:c5:45:eb:04:41:26:2c:67:89:1f:ce:14:96:19:12:72:04: bc:06:54:ff:52:17:65:e2:70:7b:c2:a7:3f:38:69:09:9b:50: b5:35:4f:20:ae:62:b9:25:8b:6b:a8:ef:ae:0c:5d:6c:1f:33: 87:bf:2d:1f:9d:1d:27:c2:f0:c0:a7:60:34:0e:f1:c7:57:ce: 3a:9c:e6:74:6c:8c:90:0e:a9:64:3b:04:c0:78:19:d1:f0:d0: 1e:75:31:07:2b:0c:2e:e7:77:11:a2:2e:9e:a9:35:85:75:66: 93:85:8f:54:06:38:41:89:5b:ee:c3:34:be:bd:c0:95:77:ff: 13:1c:cf:b3:e7:fb:ba:49:0b:aa:e2:f4:00:b7:b1:26:72:86: 80:70:99:17:0c:07:2b:6c:1d:e9:34:c7:e8:fd:c4:f0:cf:41: 2c:ac:1b:91:53:07:88:2b:a2:09:75:53:11:d1:d4:37:f6:59: 2d:53:4f:46:97:c4:6d:99:c7:4f:f1:4d:4d:10:61:cd:17:5c: 90:25:cf:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKEQ1MEMyOTU3REZBODQwQTk0MzBGQjlFRTI1RDREQ0ZB MTcxMjlDMTgwHhcNMjUwNzAyMTYwMjI2WhcNMjUwNzA5MTYwMjI2WjAYMRYwFAYD VQQDEw02ODY1NTgxMi02NjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6jQb/rVQaI/cHh5pq4Rp3Jf3uIksPyubRyLZ93ptc91zdswKmxdvK+bRqWne TL3Kfnb8dAJ+OdxWoOnYBFrIpEqDT1ZzPc/Bb//hf3aROtFqJYRpz1G1Y/JM6f9U Q1JtJEyb/iOjiM2oUk0LGJmmE9w8WTk22qsnDm43skikx1DLvyGfrV4fDQ3VL90a FcRP2xNKaqQiS/3ucEGDOoeF8HCgrTiPZz9aWmhaRp07AfOloJOEgKssflEQgIXB mD49KWJfYJwW3W+jLniEdMX4qJBjrR4waTN/bGwOO0tHkZsOVDpufeKMUMpRLF4h hZaXjZ++AokfKgIX3jjwFzgeuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvcDngn M9tDtq3/0OERDAGcqSD1MB8GA1UdIwQYMBaAFNUMKVffqECpQw+57iXU3PoXEpwY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC82NjBFMDU4OEQy N0QxMUVEOEU5QTI1ODBDNEY5QUUwMi8xUXdwVjktb1FLbEREN251SmRUYy1oY1Nu QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzFRd3BWOS1vUUtsREQ3bnVKZFRjLWhjU25CZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REQ0RC82NjBFMDU4OEQyN0QxMUVEOEU5QTI1ODBDNEY5QUUwMi8xUXdwVjktb1FL bEREN251SmRUYy1oY1NuQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6or8FazDyjsL6WHX96rZJ1aVrE9XY7LKAcoFMp/ZJ9LVz1lHyUxOS tdOjRmnlncZFglIGaVcaxUXrBEEmLGeJH84UlhkScgS8BlT/Uhdl4nB7wqc/OGkJ m1C1NU8grmK5JYtrqO+uDF1sHzOHvy0fnR0nwvDAp2A0DvHHV846nOZ0bIyQDqlk OwTAeBnR8NAedTEHKwwu53cRoi6eqTWFdWaThY9UBjhBiVvuwzS+vcCVd/8THM+z 5/u6SQuq4vQAt7EmcoaAcJkXDAcrbB3pNMfo/cTwz0EsrBuRUweIK6IJdVMR0dQ3 9lktU09Gl8RtmcdP8U1NEGHNF1yQJc+h -----END CERTIFICATE-----Generated at Thu Jul 3 23:01:44 2025 by rpki-client